CVE-2018-20730
CVE-2018-20730 is a SQL injection in NeDi prior to 1.7Cp3, exploitable via the query.php component. The vulnerability allows any user to execute arbitrary SQL read commands, enabling potential data disclosure. The available documents confirm the affected product (NeDi), the vulnerable component (...